Integer-overflow in ff_gen_search |
|||||||||
Issue descriptionDetailed report: https://clusterfuzz.com/testcase?key=4621906459492352 Fuzzer: libFuzzer_media_pipeline_integration_fuzzer Job Type: libfuzzer_chrome_ubsan Platform Id: linux Crash Type: Integer-overflow Crash Address: Crash State: ff_gen_search ff_seek_frame_binary av_seek_frame Sanitizer: undefined (UBSAN) Regressed: https://clusterfuzz.com/revisions?job=libfuzzer_chrome_ubsan&range=447011:447110 Reproducer Testcase: https://clusterfuzz.com/download?testcase_id=4621906459492352 Issue filed automatically. See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.
,
Jul 13 2017
Correction ========= @tzik -- Could you please look into the issue, kindly re-assign if this is not related to your changes. Thank You.
,
Jul 17 2017
,
Sep 19 2017
Predator and CL could not provide any possible suspects. Using Code Search for the file, "utils.c" adding the concern owner in Cc. Could some one please look into the issue and update. Suspecting Commit# https://chromium.googlesource.com/chromium/third_party/ffmpeg.git/+/b9d2005ea5d6837917a69bc2b8e98f5695f54e39 Thank You.
,
Sep 19 2017
,
Sep 19 2017
Issue 719136 has been merged into this issue.
,
Oct 1 2017
Automatically applying components based on information from OWNERS files. If this seems incorrect, please apply the Test-Predator-Wrong-Components label.
,
Oct 3 2017
Here is the Change Log from CF report: https://chromium.googlesource.com/chromium/src/+log/933415de4dc11b5f983ba3f48ea5d85e42d814f8..dde7b8ed7dc85fb9a8572b1612f7c5912e7755e7?pretty=fuller&n=10000 hubbe@, can you please take a look and see if something is related to your change (https://chromium.googlesource.com/chromium/src/+/4f79aee08df8f4521a9d5e39144b822739ea3888) ? Thank you!
,
Oct 24 2017
For more information, please see https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reference.md. The link referenced in the description is no longer valid. (bulk edit)
,
Nov 7 2017
,
Nov 19 2017
ClusterFuzz testcase 5237199506505728 is verified as fixed, so closing issue as verified. If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.
,
Nov 26 2017
ClusterFuzz testcase 4621906459492352 is still reproducing on tip-of-tree build (trunk). Please re-test your fix against this testcase and if the fix was incorrect or incomplete, please re-open the bug. Otherwise, ignore this notification and add ClusterFuzz-Wrong label. |
|||||||||
►
Sign in to add a comment |
|||||||||
Comment 1 by sandeepkumars@chromium.org
, Jul 13 2017Components: Infra>Git
Labels: M-61 Test-Predator-Correct-CLs